ID

10934

Nom

MS FTPd DoS

Auteurs

This script is Copyright (C) 2002 Renaud Deraison

Catégorie

FTP

Action

denial

Résumé

Tries to crash the remote service

Description

Synopsis : The remote FTP server is prone to a denial of service attack. Description : It was possible to make the remote FTP server crash by sending the command 'STAT *?AAAAA....AAAAA'. There is a bug in certain versions of Microsoft FTP server that can be exploited in this fashion. Other FTP servers may also react adversely to such a string. An attacker may leverage this issue to crash the affected service and deny usage to legitimate users. Solution : If using Microsoft's FTP server, see http://www.microsoft.com/technet/security/bulletin/ms02-018.mspx. Otherwise, contact the vendor for a patch. Risk factor : Medium / CVSS Base Score : 5.0 (CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

WS FTP STAT buffer overflow
ProFTPd ASCII upload overflow
Writeable FTP root
EFTP tells if a given file exists
proftpd 1.2.0preN check
War FTP Daemon Remote Denial Of Service Vulnerability
HP-UX ftpd Remote Privileged Access Vulnerability
SmallFTP traversal
FTPshell 3.38 Denial of Service Vulnerability
wu-ftpd S/KEY authentication overflow
ArGoSoft FTP Server < 1.4.2.8 Multiple .LNK File Handling Vulnerabilities
Windows Administrator NULL FTP password
Titan FTP Server CWD heap overflow
BlackJumboDog FTP server multiple command overflow
GuildFTPd Long SITE Command Overflow
Solaris FTPd tells if a user exists
Fake FTP server accepts any command
proftpd 1.2.0rc2 format string vuln
wu-ftpd rnfr file overwrite
CROB FTP Server multiple connections DoS
DreamFTP format string
webweaver FTP DoS
ftp USER, PASS or HELP overflow
vftpd buffer overflow
Golden FTP Server <= 2.60 Information Disclosure Vulnerabilities
WS FTP server DoS
HP-UX ftpd glob() Expansion STAT Buffer Overflow
RaidenFTPD Directory Traversal flaw
wu-ftpd fb_realpath() off-by-one overflow
Debian proftpd 1.2.0 runs as root
wu-ftpd restricted-gid unauthorized access
Fake FTP server accepts a bad sequence of commands
proftpd < 1.2.11 remote user enumeration
WS_FTP SITE CPWD Buffer Overflow
ArGoSoft FTP Server DELE Command Remote Buffer Overrun
FTPd tells if a user exists
ArGoSoft FTP Server USER Command Account Enumeration
HP-UX FTPD REST Command Memory Disclosure Vulnerability
EFTP installation directory disclosure
WS FTP server FTP bounce attack and PASV connection hijacking flaws
Ftp PASV on connect crashes the FTP server
WFTP 3.21 multiple remote overflows
SlimFTPd Multiple Buffer Overflow Vulnerabilities
wu-ftpd PASV format string
Farmers WIFE FTP Server Multiple Command Traversal Arbitrary File Creation
BSD ftpd setproctitle() format string
wu-ftpd glob vulnerability (2)
wu-ftpd SITE EXEC vulnerability
TypSoft FTP STOR/RETR DoS
Titan FTP Server SITE WHO Command Denial of Service Vulnerability
Titan FTP Server directory traversal
ProFTPD pre6 Buffer Overflow
xlight FTP Server RETR Stack Overflow Vulnerability
Serv-U < 2.5e Multiple Vulnerabilities (OF, Path Disc)
ProFTPD AUTH Multiple Authentication Module Security Bypass Vulnerability
glFTPD ZIP Plugins Multiple Directory Traversal Vulnerabilities
bftpd chown overflow
NiteServer FTP directory traversal
War FTP Daemon CWD/MKD Buffer Overflow
vxworks ftpd buffer overflow
Blac'oon FTP user disclosure
AIX FTPd buffer overflow
Fake FTP server does not accept any command
Serv-U Directory traversal
Platinum FTP Server
NB1300 router default FTP account
SAMI FTP Server DoS
wu-ftpd MAIL_ADMIN overflow
Broker FTP files listing
oftpd denial of service
SunFTP Buffer Overflow
MS FTPd DoS
ProFTPD < 1.3.0rc2 Multiple Vulnerabilities
proftpd mod_sql injection
VisNetic and Titan FTP Server traversal
WS FTP overflows
Generic FTP traversal
Anonymous FTP enabled
FTP Writeable Directories
FTP site exec
FTP Service Allows Any Username
SunFTP directory traversal
proftpd mkdir buffer overflow
GlobalSCAPE Secure FTP Server (gsftps) Custom Command Long Parameter DoS
FTP Serv-U Server MDTM Stack Overflow Vulnerability
Guild FTPd tells if a given file exists
Ability FTP Server Remote Buffer Overflow
ProFTPD Command Truncation Cross-Site Request Forgery Vulnerability
BSD ftpd Single Byte Buffer Overflow
PlanetFileServer Remote Buffer Overflow Vulnerability
FTP CWD ~root
Multiple WarFTPd DoS
ProFTPD sreplace Buffer Overflow Vulnerability
proftpd exhaustion attack
FTP bounce check
wu-ftpd ABOR Privilege Escalation
.forward in FTP root
WS FTP server multiple flaws
Inframail FTP Server Remote Buffer Overflow Vulnerability
PlatinumFTPServer Multiple Malformed User Name Connection Denial Of Service Vulnerability
Ftp PASV denial of service
Linux FTP backdoor
ArGoSoft FTP Server .lnk Shortcut Upload Arbitrary File Manipulation
FTP real path
Passwordless Zaurus FTP server
NGC ActiveFTP Denial of Service
ftp glob overflow
SurgeFTP LEAK Command Denial of Service Vulnerability
wu-ftpd buffer overflow
WFTP login check
TYPSoft empty username DoS
War FTP Daemon Directory Traversal
Home Ftp Server Multiple Vulnerabilities
FTPD glob (too many *) denial of service
hpux ftpd PASS vulnerability
FTP Clear Text Authentication
wu-ftpd ls -W memory exhaustion
RaidenFTPD Unauthorized File Access flaw
eScan Server Management Console (eserv.exe) FTP Server Arbitrary File Download
ProFTPd buffer overflow
Serv-U FTP Server SITE CHMOD Command Stack Overflow Vulnerability
Golden FTP Server Directory Traversal Vulnerability
FTPD glob Heap Corruption
FileZilla FTP Server Denial of Service Vulnerabilities
3Com 3CServer/3CDaemon FTP Overflow
Windows NT ftp guest account
.rhosts in FTP root
CrobFTP format string
bftpd format string vulnerability
War FTP Daemon USER/PASS Overflow
TYPSoft FTP directory traversal
wu-ftpd SITE NEWER vulnerability
ftpd strtok() stack overflow
PFTP login check
EFTP carriage return DoS
Serv-U < 7.3.0.1 Multiple Remote Vulnerabilities
Ariel FTP server : log in in as document
Serv-U < 7.2.0.1 Denial of Service Vulnerability
ST FTP traversal
WFTP 2.41 rc11 multiple DoS
WS FTP server multiple flaws (2)
WS FTP CWD DoS
DataWizard FTPXQ Default Accounts
WFTP RNTO DoS